Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/13abc4-d137-4890-9c3c-a4b7e3483919/1/EpgwYKQJv7U15xO4QK1pAYVCKqw.roa
File: EpgwYKQJv7U15xO4QK1pAYVCKqw.roa (raw, json)
Hash identifier: TXN9pvZvzPyfo60yeChK83TK2o0412IGPiVO3ki0870=
Subject key identifier: 12:98:30:60:A4:09:BF:B5:35:E7:13:B8:40:AD:69:01:85:42:2A:AC
Certificate issuer: /CN=dcdba07b9f70bd5ece1b0235ea2cc8cad612edc2
Certificate serial: 056D3091
Authority key identifier: DC:DB:A0:7B:9F:70:BD:5E:CE:1B:02:35:EA:2C:C8:CA:D6:12:ED:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Nuge59wvV7OGwI16izIytYS7cI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/13abc4-d137-4890-9c3c-a4b7e3483919/1/EpgwYKQJv7U15xO4QK1pAYVCKqw.roa
Signing time: Sat 01 Jan 2022 09:02:30 +0000
ROA not before: Sat 01 Jan 2022 09:02:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52438
IP address blocks: 185.180.8.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91041937 (0x56d3091)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcdba07b9f70bd5ece1b0235ea2cc8cad612edc2
Validity
Not Before: Jan 1 09:02:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12983060a409bfb535e713b840ad690185422aac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:be:2b:1c:47:83:7f:f8:15:94:cb:9c:46:e3:
b0:55:09:17:d6:93:89:94:b3:b1:3c:6d:14:2d:b0:
a0:e7:3b:aa:e7:14:75:53:15:48:ca:0e:57:e3:17:
6c:5a:d4:52:71:25:9b:da:ad:85:dc:7d:8d:b5:bf:
df:1a:7f:28:9b:97:52:cd:56:cc:a0:bc:e2:fe:9e:
6e:3a:91:2d:3c:d4:50:60:42:ca:8a:60:7a:f1:f7:
20:7e:85:66:36:37:c6:0f:35:a0:96:9e:50:70:48:
83:08:c9:a9:62:b5:f3:74:2d:ca:85:da:1c:9d:63:
3a:0c:00:ef:d6:be:a8:e0:bb:e0:f9:30:08:41:f4:
87:d6:3e:3b:20:e7:40:2d:e7:23:ef:f5:a5:fb:63:
42:a0:6e:b7:98:ca:01:c5:6a:ae:66:78:24:eb:76:
0f:71:c8:9a:b5:d1:fa:aa:e0:f0:26:e7:fa:a6:a9:
1d:4e:09:7e:ad:29:8b:46:80:88:10:e2:39:e8:04:
83:e2:d1:3e:5a:8f:d8:1a:bf:d3:06:0e:32:f9:48:
6e:15:c5:89:cb:0a:3f:26:d1:30:e3:8b:82:ac:8d:
e5:3c:4c:8c:67:3b:9b:3b:02:09:8b:4c:a2:2d:44:
ea:80:5f:4d:75:2d:4a:17:c0:24:ec:e8:98:4e:7e:
f1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:98:30:60:A4:09:BF:B5:35:E7:13:B8:40:AD:69:01:85:42:2A:AC
X509v3 Authority Key Identifier:
keyid:DC:DB:A0:7B:9F:70:BD:5E:CE:1B:02:35:EA:2C:C8:CA:D6:12:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Nuge59wvV7OGwI16izIytYS7cI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/13abc4-d137-4890-9c3c-a4b7e3483919/1/EpgwYKQJv7U15xO4QK1pAYVCKqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/13abc4-d137-4890-9c3c-a4b7e3483919/1/3Nuge59wvV7OGwI16izIytYS7cI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.8.0/22
Signature Algorithm: sha256WithRSAEncryption
21:5f:8c:6b:21:fc:f9:08:7e:75:f0:1f:64:75:37:8e:72:59:
0a:2c:91:3c:0b:b9:4f:fe:83:3d:29:48:86:17:a8:57:a0:cb:
0a:84:35:f8:35:c0:6a:59:a6:e0:34:7b:27:88:62:1a:96:c2:
bb:0e:bd:db:15:37:eb:a1:17:25:8a:ef:9f:9c:f0:75:56:8d:
e6:73:10:89:3a:a4:aa:3a:a3:27:9a:f8:6a:4c:f5:ff:6f:ed:
03:9e:12:b1:a4:87:09:4f:86:f7:1e:12:b1:fb:03:b3:99:ed:
bb:1c:2f:e1:93:3d:7e:45:ec:b3:36:d9:ce:0f:50:78:6e:15:
03:3d:60:bc:a9:0d:40:94:0c:0f:92:c2:15:65:a4:54:7d:32:
03:35:23:1e:ea:22:5f:d1:b6:d7:b6:2a:73:04:1c:bc:8c:93:
bc:2b:91:39:d4:5a:1a:3b:52:b2:a8:e9:5b:81:5c:42:72:ab:
fb:74:c9:37:a3:6d:41:ae:b3:c9:65:0f:72:65:ec:a1:4a:56:
1e:b2:03:3d:af:96:ea:f6:76:70:20:91:0f:4d:93:c5:3d:e7:
07:6e:34:b5:f2:d6:52:f0:01:e4:70:aa:a4:38:76:8e:21:71:
d7:15:7d:c4:83:8f:00:9b:16:35:6a:86:a3:24:bf:4a:cd:98:
19:a0:9a:37
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBW0wkTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
Y2RiYTA3YjlmNzBiZDVlY2UxYjAyMzVlYTJjYzhjYWQ2MTJlZGMyMB4XDTIyMDEw
MTA5MDIzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTI5ODMwNjBhNDA5
YmZiNTM1ZTcxM2I4NDBhZDY5MDE4NTQyMmFhYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJm+KxxHg3/4FZTLnEbjsFUJF9aTiZSzsTxtFC2woOc7qucU
dVMVSMoOV+MXbFrUUnElm9qthdx9jbW/3xp/KJuXUs1WzKC84v6ebjqRLTzUUGBC
yopgevH3IH6FZjY3xg81oJaeUHBIgwjJqWK183QtyoXaHJ1jOgwA79a+qOC74Pkw
CEH0h9Y+OyDnQC3nI+/1pftjQqBut5jKAcVqrmZ4JOt2D3HImrXR+qrg8Cbn+qap
HU4Jfq0pi0aAiBDiOegEg+LRPlqP2Bq/0wYOMvlIbhXFicsKPybRMOOLgqyN5TxM
jGc7mzsCCYtMoi1E6oBfTXUtShfAJOzomE5+8VsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQSmDBgpAm/tTXnE7hArWkBhUIqrDAfBgNVHSMEGDAWgBTc26B7n3C9Xs4b
AjXqLMjK1hLtwjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNOdWdlNTl3dlY3T0d3STE2aXpJeXRZUzdjSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjIvMTNhYmM0LWQxMzctNDg5MC05YzNjLWE0YjdlMzQ4MzkxOS8x
L0VwZ3dZS1FKdjdVMTV4TzRRSzFwQVlWQ0txdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIv
MTNhYmM0LWQxMzctNDg5MC05YzNjLWE0YjdlMzQ4MzkxOS8xLzNOdWdlNTl3dlY3
T0d3STE2aXpJeXRZUzdjSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArm0CDANBgkqhkiG9w0BAQsFAAOC
AQEAIV+MayH8+Qh+dfAfZHU3jnJZCiyRPAu5T/6DPSlIhheoV6DLCoQ1+DXAalmm
4DR7J4hiGpbCuw692xU366EXJYrvn5zwdVaN5nMQiTqkqjqjJ5r4akz1/2/tA54S
saSHCU+G9x4SsfsDs5ntuxwv4ZM9fkXsszbZzg9QeG4VAz1gvKkNQJQMD5LCFWWk
VH0yAzUjHuoiX9G217YqcwQcvIyTvCuROdRaGjtSsqjpW4FcQnKr+3TJN6NtQa6z
yWUPcmXsoUpWHrIDPa+W6vZ2cCCRD02TxT3nB240tfLWUvAB5HCqpDh2jiFx1xV9
xIOPAJsWNWqGoyS/Ss2YGaCaNw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:38 2025 by rpki-client